Conditional Safety Certificates for ICT
Conditional Safety Certificates (ConSerts) have been applied to support resiliency of ICT infrastructures. Support for deployment and execution of ConSerts in ICT infrastructure according to use case needs was provided additionally.
Describe the innovation content of the result:
ConSerts are models for supporting resilient operation. They have been adapted for use in ICT systems, and an executor component supporting interfaces to ICT systems for BIECO use case needs has been developed.
Who will be the customer?
Research and industry partners interested to deploy additional safeguards for assuring the resilient operation of their systems.
What benefit will it bring to the customers?
ConSerts can be used to confirm that (a) systems can be dynamically composed while respecting overall requirements and (b) operational conditions for dependable operation are still valid.
When is the expected date of achievement in the project (Mth/yr)?
Concept developed in D6.4 (12/2021) and development for UC1 finalized in (04/20223)
When is the time to market (Mth/yr)?
At the end of the project.
What are the costs to be incurred after the project and before exploitation?
Results already being incorporated into IESE projects.
What is the approximate price range of this result/price of licences?
Unclear; range depends on IESE project acquisition offers.
What are the market size in Millions € for this result and relevant trend?
How will this result rank against competing products in terms of price/performance?
Alternative options much more complex to engineer, much more customization needed at implementation level. Trade-off in deployment flexibility is USP.
Who are the competitors for this result?
Unclear; most alternatives would be developed in-house.
How fast and in what ways will the competition respond to this result?
Who are the partners involved in the result?
Who are the industrial partners interested in the result (partners, sponsors, etc.)?
Have you protected or will you protect this result? How? When?
No explicit protection planned yet.
BIECO Integrated Platform will integrate the tools in a loosely coupled way.
Data Collection Tool (DCT) stores information from relevant vulnerability related datasets, providing a single access point to information required by the vulnerability detection and forecasting tools developed in T3.3, as well as for the failure prediction tools developed in T4.2.
Vulnerability Detection Tool will detect existing vulnerabilities within the source code which may lead to the successful execution of an attack.
Vulnerability Exploitability Forecasting Tool will estimate the probability of a vulnerability to be exploited in the next 3, 6 or 12 months.
Vulnerability Propagation Tool will calculate and offer the paths affected by a vulnerability in the source code.
Fuzzing Tool will test System Under Test (SUT) security vulnerabilities or inputs not contemplated that could compromise the system; as a black-box process, by using unintended or incorrect inputs and monitoring their corresponding outputs.